Stay Connected:

ELSA-2021-9478

ELSA-2021-9478 - openssl security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2021-10-13

Description


[1.0.2k-22]
- fix CVE-2021-23841 openssl: NULL pointer dereference
in X509_issuer_and_serial_hash()
- fix CVE-2021-23840 openssl: integer overflow in CipherUpdate
- Resolves: rhbz#1932132, rhbz#1932126


Related CVEs


CVE-2021-23840
CVE-2021-23841

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) openssl-1.0.2k-22.ksplice1.el7_9.src.rpm844b2654046d278b8e8931400fae63de-
openssl-1.0.2k-22.ksplice1.el7_9.aarch64.rpmb368644720e31f618127161b3ec3c195-
openssl-devel-1.0.2k-22.ksplice1.el7_9.aarch64.rpmfb4342ddc84971270f34c985e9f3e2a8-
openssl-libs-1.0.2k-22.ksplice1.el7_9.aarch64.rpm391afc3c31a718de9f9d6406ccecae46-
openssl-perl-1.0.2k-22.ksplice1.el7_9.aarch64.rpmb355ff4c7459ad56b6e23561ed8f98b0-
openssl-static-1.0.2k-22.ksplice1.el7_9.aarch64.rpm59a0da1ff634c7c0b3409d19bd2a1a81-
Oracle Linux 7 (x86_64) openssl-1.0.2k-22.ksplice1.el7_9.src.rpm844b2654046d278b8e8931400fae63de-
openssl-1.0.2k-22.ksplice1.el7_9.x86_64.rpm81d06f0f1068b9bf430fa2d74830f1ba-
openssl-devel-1.0.2k-22.ksplice1.el7_9.i686.rpmc21b462ed9b2e59d6f95ddde4b87d86d-
openssl-devel-1.0.2k-22.ksplice1.el7_9.x86_64.rpmf37562a3a4ee0c30383bd4fdf0399794-
openssl-libs-1.0.2k-22.ksplice1.el7_9.i686.rpm9be2a3a842206e0e8ecf8d3d121bfa37-
openssl-libs-1.0.2k-22.ksplice1.el7_9.x86_64.rpme95d6791584760e52f76beb5fa96e836-
openssl-perl-1.0.2k-22.ksplice1.el7_9.x86_64.rpm99c8d55982c1a50c2611c9333c643930-
openssl-static-1.0.2k-22.ksplice1.el7_9.i686.rpm0d78044c935171613afac9854258c9da-
openssl-static-1.0.2k-22.ksplice1.el7_9.x86_64.rpm608ac88c6eeef073009fd05847bfcf99-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights